Third Party Risk and Trust/GRC Analyst

Overview

Hybrid
Depends on Experience
Contract - Independent
Contract - W2
Contract - 12 Month(s)

Skills

Third Party
Risk
GRC
automate the GRC

Job Details

Third Party Risk and Trust/GRC Analyst
Location: Hybrid (Menlo Park, CA) with 2 3 onsite days per week (Tuesdays and Thursdays required)
Duration: 1 Year Contract

Description:

  • They need someone to automate their GRC.
  • The Client is seeking an experienced, highly motivated 3rd Party Risk and Trust Analyst (contractor) to support our third-party risk management and trust-building initiatives.
  • This individual will play a key role in evaluating third-party risks, ensuring compliance with security standards, and addressing gaps within customer-facing processes like RFPs (Request for Proposals) and security questionnaires.
  • The ideal candidate will have hands-on experience in third-party risk management, a solid understanding of cloud security, and the ability to adapt quickly to modern security and trust-related challenges.
Key Responsibilities:
  • Operational Oversight: Identify and address gaps in customer-facing processes, such as RFPs and security questionnaires, ensuring regular updates to maintain current best practices.
  • Program Management: Collaborate with engineering and cross-functional teams to close identified gaps, drive security initiatives, and implement operational improvements to strengthen customer trust.
  • Hands-On Execution: Directly support customer security inquiries, build credibility in third-party engagements, and coordinate with internal teams to resolve issues efficiently.
  • Security Standards Leadership: Refresh and implement third-party risk management processes and security standards to meet evolving customer and industry expectations.
Required Qualifications:
  • Cloud Security Expertise: Hands-on knowledge of cloud security concepts, solutions, and their implementation in industry practices.
  • Third-Party Risk Management (TPRM): Experience evaluating and managing security practices of third-party vendors and understanding TPRM principles.
  • Security and Compliance Knowledge: Familiarity with customer security questions, industry certifications, and compliance requirements.
  • Adaptability: Proactive problem-solving skills with an ability to adjust to evolving industry frameworks and practices.
  • Preferred Certification: Familiarity with AI-driven security measures and relevant certifications (SAFE AI Certification preferred).
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.